Thank you for the question. That message means the kernel has detected an application being run by an untrusted user that is not owned by root (perhaps Plesk changed the ownership). The second question is why is apache running postfix? That might be a bigger problem for you, maybe some malicious software is spamming people?

If its not malicious, the most secure option is make sure the application owned by root (and the parent directories it resides in) per the FAQ linked below. Making apache a trusted user is very insecure, and is not recommended. This would allow any software uploaded as apache, including malicious software, to be executable on the system, which is something you do not want. Files should be owned by actual users, not by special purpose users like apache. Thats a big hole if you leave it open.

I definitely don't want to keep apache out of the "untrusted" group, but at this stage, it was the easiest and quickest way to restore service to multiple sites that use this sort of facility.

The class files for the phpmailer are all be owned by the FTP account of the vhost, but it still apache that is calling it.

None of the solutions in the linked wiki page seem to be completely suitable - but can you advise as to how the upgrade would have caused this? Or (now knowing more info) a way to get everything working the way it did?

One other thought, are you sure its phpmailer thats doing this? That message says it was a shell that did it, which implies interactive action is occurring. Is some other script calling sendmail.postfix? Or maybe a malicious user?

Quote:

but can you advise as to how the upgrade would have caused this?

Do you mean a Plesk upgrade or something else? If you mean Plesk, you may want to ask Parallels what changed. you may also want to ask the phpmailer folks how their software works, because it looks very odd to me. I'm not sure this is the software being called, look carefully at the message:

That means /usr/sbin/sendmail.postfix was called by bash, a shell. Thats pretty strange for apache to call something via the shell. Are you sure your application is using an interactive shell? If it is, how does it do this? Thats a very odd way to call things from apache, normally I'd expect to see PHP, PERL or something else calling sendmail.postfix.

I'd try phpmailer myself, but I'm not familiar with phpmailer and it looks like its not a stand alone app but rather something you include in another app?

Who is online

Users browsing this forum: Bing [Bot] and 2 guests

You cannot post new topics in this forumYou cannot reply to topics in this forumYou cannot edit your posts in this forumYou cannot delete your posts in this forumYou cannot post attachments in this forum